Vulnerability Description
Buffer overflow in Cisco PIX Firewall 5.2.x to 5.2.8, 6.0.x to 6.0.3, 6.1.x to 6.1.3, and 6.2.x to 6.2.1 allows remote attackers to cause a denial of service via HTTP traffic authentication using (1) TACACS+ or (2) RADIUS.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Pix Firewall Software | 5.2 |
References
- http://www.ciac.org/ciac/bulletins/n-017.shtmlPatch
- http://www.cisco.com/warp/public/707/pix-multiple-vuln-pub.shtmlPatch
- http://www.iss.net/security_center/static/10661.phpPatch
- http://www.securityfocus.com/bid/6212Patch
- http://www.ciac.org/ciac/bulletins/n-017.shtmlPatch
- http://www.cisco.com/warp/public/707/pix-multiple-vuln-pub.shtmlPatch
- http://www.iss.net/security_center/static/10661.phpPatch
- http://www.securityfocus.com/bid/6212Patch
FAQ
What is CVE-2002-2140?
CVE-2002-2140 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Buffer overflow in Cisco PIX Firewall 5.2.x to 5.2.8, 6.0.x to 6.0.3, 6.1.x to 6.1.3, and 6.2.x to 6.2.1 allows remote attackers to cause a denial of service via HTTP traffic authentication using (1) ...
How severe is CVE-2002-2140?
CVE-2002-2140 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-2140?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Pix Firewall Software.